# Filters added to this controller apply to all controllers in the application.
# Likewise, all the methods added will be available for all controllers.

class ApplicationController < ActionController::Base
  before_filter :authorize, :except => [:login, :register, :index, :about, :pictures, :users, :show, :gallery, :preview] 
  helper :all # include all helpers, all the time
  
  #before_filter :authorize_admin, :only => :users

  # See ActionController::RequestForgeryProtection for details
  # Uncomment the :secret if you're not using the cookie session store
  protect_from_forgery  :secret => '46b6b1b870f6052c235fc884f4d72e79'
  
  # See ActionController::Base for details 
  # Uncomment this to filter the contents of submitted sensitive data parameters
  # from your application log (in this case, all fields with names like "password"). 
  # filter_parameter_logging :password
  
protected
  def authorize
  	unless User.find_by_id(session[:user_id])
  		flash[:notice] = "Prosze sie zalogowac"
  		redirect_to :controller => :site, :action => :login
  	end
  end
  
end
